The answer is simple: there is no single “correct” way. What matters is the approach that best fits your business model.
Whenever we talk about implementing LGPD, we need to remember that there’s no universal formula for compliance, no rigid blueprint, and certainly no rule saying that because consultancy “X” follows a certain method, you must copy it. In reality, while you can certainly use an LGPD guide, the actual execution of your Compliance Plan will heavily depend on your company’s team to truly deliver results. A structured roadmap will guide your plan’s activities and greatly simplify your compliance journey.
However, every industry sector has its own specificities and workflows, which is why the pace and structure of your plan may differ from Company A or B. Your plan must be tailored by your consultancy to meet your company’s exact needs. You don’t need to worry if your plan has 5 phases and another business’s has 10.
At the end of the day, it doesn’t matter whether you start with an assessment, kick off with awareness sessions for frontline teams, skip a phase to speed things up, or run multiple phases simultaneously. What truly matters is that your company has a complete understanding of all personal data processing activities it carries out, and that, to continue these operations, it fully complies with all provisions outlined in the General Data Protection Law.
Let me know if you’d like any adjustments to better suit your target audience or platform. Happy to help!
